I just received the following e-mail from Authorize.Net about a bunch of changes that are being performed. Do I need to be concerned about any of these updates?
The short answer to your question is no, these changes do not affect you.
Here are the specific changes that are addressed in the above letter from Authorize.Net:
- Security Certificate Upgrades to api.authorize.net
After September 21, 2015 any website that connects to api.authorize.net will need to use a SHA-2 signed certificate or it will fail. This change will have no effect on your website.
- Transaction ID Changes
Authorize.Net is changing how they create Transaction IDs. Specifically, they will no longer be created in numerical order. This will have no effect on your website.
- TLS Remediation for PCI DSS Compliance
Authorize.Net is going to be disabling something called TLS 1.0. Transport Layer Security (TLS) is the successor to Secure Sockets Layer (SSL) and is used to secure the transaction between your website and Authorize.Net. This change will not affect your website.
- Akamai Reminder
As previously reported, the change for the Akamai upgrade is already done.
Please submit a Support Request if you have any questions about these Authorize.net changes. Thank you.